Vulnerabilities > Improper Input Validation
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-27 | CVE-2020-4981 | Improper Input Validation vulnerability in IBM Spectrum Scale IBM Spectrum Scale 5.0.4.1 through 5.1.0.3 could allow a local privileged user to overwrite files due to improper input validation. | 6.0 |
| 2021-04-26 | CVE-2021-21221 | Improper Input Validation vulnerability in multiple products Insufficient validation of untrusted input in Mojo in Google Chrome prior to 90.0.4430.72 allowed a remote attacker who had compromised the renderer process to leak cross-origin data via a crafted HTML page. | 6.5 |
| 2021-04-26 | CVE-2021-21208 | Improper Input Validation vulnerability in multiple products Insufficient data validation in QR scanner in Google Chrome on iOS prior to 90.0.4430.72 allowed an attacker displaying a QR code to perform domain spoofing via a crafted QR code. | 6.5 |
| 2021-04-22 | CVE-2021-0267 | Improper Input Validation vulnerability in Juniper Junos An Improper Input Validation vulnerability in the active-lease query portion in JDHCPD's DHCP Relay Agent of Juniper Networks Junos OS allows an attacker to cause a Denial of Service (DoS) by sending a crafted DHCP packet to the device thereby crashing the jdhcpd DHCP service. | 6.5 |
| 2021-04-22 | CVE-2021-31555 | Improper Input Validation vulnerability in Mediawiki An issue was discovered in the Oauth extension for MediaWiki through 1.35.2. | 7.5 |
| 2021-04-20 | CVE-2020-7857 | Improper Input Validation vulnerability in Tobesoft Xplatform A vulnerability of XPlatform could allow an unauthenticated attacker to execute arbitrary command. | 9.8 |
| 2021-04-15 | CVE-2020-28898 | Improper Input Validation vulnerability in Resourcexpress 4.9K In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation. | 5.3 |
| 2021-04-13 | CVE-2021-23279 | Improper Input Validation vulnerability in Eaton products Eaton Intelligent Power Manager (IPM) prior to 1.69 is vulnerable to unauthenticated arbitrary file delete vulnerability induced due to improper input validation in meta_driver_srv.js class with saveDriverData action using invalidated driverID. | 10.0 |
| 2021-04-13 | CVE-2021-0400 | Improper Input Validation vulnerability in Google Android 10.0/11.0/9.0 In injectBestLocation and handleUpdateLocation of GnssLocationProvider.java, there is a possible incorrect reporting of location data to emergency services due to improper input validation. | 5.5 |
| 2021-04-12 | CVE-2021-21393 | Improper Input Validation vulnerability in multiple products Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). | 6.5 |